SUSE-IU-2026:5110-1: Security update of suse/sl-micro/6.2/base-os-container

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Sun Jun 28 07:38:10 UTC 2026


SUSE Image Update Advisory: suse/sl-micro/6.2/base-os-container
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2026:5110-1
Image Tags        : suse/sl-micro/6.2/base-os-container:2.3.1 , suse/sl-micro/6.2/base-os-container:2.3.1-8.20 , suse/sl-micro/6.2/base-os-container:latest
Image Release     : 8.20
Severity          : important
Type              : security
References        : 1261900 1265450 1267189 CVE-2025-45582 CVE-2026-5704 
-----------------------------------------------------------------

The container suse/sl-micro/6.2/base-os-container was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: 1085
Released:    Fri Jun 26 10:11:56 2026
Summary:     Recommended update for rsync
Type:        recommended
Severity:    moderate
References:  
This update for rsync fixes the following issue:

- Remove unused patch from package

-----------------------------------------------------------------
Advisory ID: 1092
Released:    Fri Jun 26 11:13:30 2026
Summary:     Security update for tar
Type:        security
Severity:    important
References:  1261900,1265450,1267189,CVE-2025-45582,CVE-2026-5704
This update for tar fixes the following issues

- CVE-2026-5704: crafted archives can be used to to hide file injection (bsc#1261900).
- Fix --dereference/-h not working properly after CVE-2025-45582 fix (bsc#1265450).


The following package changes have been done:

- tar-1.35-160000.4.1 updated
- rsync-3.4.1-160000.5.1 updated


More information about the sle-container-updates mailing list